Security Bulletin

The vulnerability could allow an unauthenticated attacker to remotely execute administrative commands.

Four individuals admitted to assisting foreign IT workers in gaining employment at US companies by providing false identities and remote access to employer-owned laptops.

Discover how Cisco IT is accelerating IT operations and delivering delightful, personalized employee experiences by leveraging machine learning, generative AI, and agentic AI — transforming the future of work.

Learn how Cisco developed an internal and secure AI-powered assistant designed to elevate how employees work. Cisco's internal AI assistant drives significant efficiency and frictionless experiences for employees.

Discover how Cisco Secure MSP Center empowers Managed Service Providers to grow their security business by offering comprehensive, multi-layered protection with Duo, Umbrella, and Secure Endpoint to SMBs, simplifying operations and boosting...

Researchers discovered a security weakness in the AI-powered coding tool that allows malicious MCP server to hijack Cursor's internal browser.

Cisco's Intermediate Python Course, IPYNE, bridges the gap between foundational knowledge and deep programmability skills

Cisco’s Zero Trust Network Access (ZTNA) approach ensures secure, seamless access to apps and devices with zero trust. With ZTNA, Cisco IT now has flexibility, visibility, and protection for critical assets anywhere.

In diary entry " Formbook Delivered Through Multiple Scripts", Xavier mentions that the following line:

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

The finger.exe command is used in ClickFix attacks.

The SANS Holiday Hack Challenge™ 2025 is available.